Conference Paper

An Experimental Evaluation of the Computational Cost of a DPI Traffic Classifier.

Dipt. di Autom. e Inf., Politec. di Torino, Turin, Italy
DOI: 10.1109/GLOCOM.2009.5425469 Conference: Proceedings of the Global Communications Conference, 2009. GLOBECOM 2009, Honolulu, Hawaii, USA, 30 November - 4 December 2009
Source: DBLP

ABSTRACT A common belief in the scientific community is that traffic classifiers based on deep packet inspection (DPI) are far more expensive in terms of computational complexity compared to statistical classifiers. In this paper we counter this notion by defining accurate models for a deep packet inspection classifier and a statistical one based on support vector machines, and by evaluating their actual processing costs through experimental analysis. The results suggest that, contrary to the common belief, a DPI classifier and an SVM-based one can have comparable computational costs. Although much work is left to prove that our results apply in more general cases, this preliminary analysis is a first indication of how DPI classifiers might not be as computationally complex, compared to other approaches, as we previously thought.

1 Bookmark
 · 
89 Views
  • Source
    [Show abstract] [Hide abstract]
    ABSTRACT: Traffic classification through Deep Packet Inspection (DPI) is considered extremely expensive in terms of processing costs, leading to the conclusion that this technique is not suitable for DPI analysis on high speed networks. However, we believe that performance can be improved by exploiting some common characteristics of the network traffic. In this paper we present and evaluate some optimizations that can definitely decrease the processing cost and can even improve the classification precision.
    Proceedings of the 2010 ACM Symposium on Applied Computing (SAC), Sierre, Switzerland, March 22-26, 2010; 01/2010
  • Source
    [Show abstract] [Hide abstract]
    ABSTRACT: Deep Packet Inspection (DPI) techniques are considered extremely expensive in terms of processing costs and therefore are usually deployed in edge networks, where the amount of data to be processed is limited. This paper demonstrates that, in case the application can tolerate some compromises in terms of accuracy (such as many measurement-based tasks) and in presence of normal traffic, the processing cost can be greatly reduced while even improving the classification precision, making DPI suitable also for high-speed networks.
    Journal of Network and Systems Management 01/2011; 19:7-31. · 0.43 Impact Factor
  • Source
    [Show abstract] [Hide abstract]
    ABSTRACT: The emergence of new Internet paradigms has changed the common properties of the network data, increas-ing the bandwidth consumption and balancing traffic in both directions. These facts raised important chal-lenges, making it necessary to devise effective solutions for managing network traffic. Since the traditional methods are rather ineffective and easily bypassed, particular attention has been paid to the development of new approaches for traffic classification. This article surveys the studies on peer-to-peer traffic detection and classification, making an extended review of the literature. Furthermore, it provides a comprehensive analysis of the concepts and strategies for network monitoring.
    ACM Computing Surveys 01/2011; 45(3). · 3.54 Impact Factor

Full-text (2 Sources)

View
36 Downloads
Available from
May 28, 2014